Comparison Overview

Q: Between Xerox company and ZS company, which one has experienced more cyber incidents in the past ?

Xerox company has historically faced a number of disclosed cyber incidents, whereas ZS company has not reported any.

Q: Between Xerox company and ZS company, which one has experienced more cyber incidents this year ?

In the current year, ZS company and Xerox company have not reported any cyber incidents.

Q: Between Xerox company and ZS company, which one has experienced at least one ransomware attack ?

Neither ZS company nor Xerox company has reported experiencing a ransomware attack publicly.

Q: Between Xerox company and ZS company, which one has experienced at least one data breach ?

Xerox company has disclosed at least one data breach, while the other ZS company has not reported such incidents publicly.

Q: Between Xerox company and ZS company, which one has experienced at least one targeted cyberattack ?

Neither ZS company nor Xerox company has reported experiencing targeted cyberattacks publicly.

Q: Between Xerox company and ZS company, which one has experienced at least one vulnerability ?

Neither Xerox company nor ZS company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Xerox company and ZS company, which one holds the most compliance certifications ?

Neither Xerox nor ZS holds any compliance certifications.

Q: Between Xerox company and ZS company, which one has the most subsidiaries ?

Xerox company has more subsidiaries worldwide compared to ZS company.

Xerox

201 Merritt 7, Norwalk, Connecticut, US

Last Update: 2025-12-02

View Profile

Between 650 and 699

http://www.xerox.com

Xerox has been redefining the workplace experience for over a century. As a services-led, software-enabled company, we power today’s hybrid workplace through advanced print, digital, and AI-driven technologies. In 2025, Xerox acquired Lexmark—expanding our global footprint, strengthening service capabilities, and equipping us to deliver an even broader portfolio of workplace technologies to our clients. Today, we continue our legacy of innovation to deliver client-centric, digitally driven solutions that meet the needs of a global, distributed workforce. Whether in offices, classrooms, or hospitals, we help our clients thrive in a constantly evolving business landscape.

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 50,167

Subsidiaries: 1

12-month incidents

0

Known data breaches

2

Attack type number

1

View Profile

ZS

1560 Sherman Avenue, Evanston, IL, US, 60201

Last Update: 2025-12-01

Between 750 and 799

http://www.zs.com

ZS is a management consulting and technology firm that partners with companies to improve life and how we live it. We transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Founded in 1983, ZS has more than 13,000 employees in over 35 offices worldwide. To learn more, visit www.zs.com/ At ZS, our mission is to inspire each other to bring our unique perspective and experience to work each day. When you join our firm, you have access to a wealth of community groups to support you, energize you and inspire you to bring your authentic self to work each day.

NAICS: 5416

NAICS Definition: Management, Scientific, and Technical Consulting Services

Employees: 18,004

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Xerox

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

https://images.rankiteo.com/companyimages/zs-associates.jpeg

ZS

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for Xerox in 2025.

Incidents vs Business Consulting and Services Industry Average (This Year)

No incidents recorded for ZS in 2025.

Incident History — Xerox (X = Date, Y = Severity)

Xerox cyber incidents detection timeline including parent company and subsidiaries

Incident History — ZS (X = Date, Y = Severity)

ZS cyber incidents detection timeline including parent company and subsidiaries

Xerox

Incidents

Date Detected: 12/2023

Type:Breach

Attack Vector: Hacking

Blog: Blog

Date Detected: 12/2023

Type:Breach

Blog: Blog

ZS

Incidents

No Incident

ZS company demonstrates a stronger AI Cybersecurity Score compared to Xerox company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Xerox company has historically faced a number of disclosed cyber incidents, whereas ZS company has not reported any.

In the current year, ZS company and Xerox company have not reported any cyber incidents.

Neither ZS company nor Xerox company has reported experiencing a ransomware attack publicly.

Xerox company has disclosed at least one data breach, while the other ZS company has not reported such incidents publicly.

Neither ZS company nor Xerox company has reported experiencing targeted cyberattacks publicly.

Neither Xerox company nor ZS company has reported experiencing or disclosing vulnerabilities publicly.

Neither Xerox nor ZS holds any compliance certifications.

Neither company holds any compliance certifications.

Xerox company has more subsidiaries worldwide compared to ZS company.

Xerox company employs more people globally than ZS company, reflecting its scale as a Business Consulting and Services.

Neither Xerox nor ZS holds SOC 2 Type 1 certification.

Neither Xerox nor ZS holds SOC 2 Type 2 certification.

Neither Xerox nor ZS holds ISO 27001 certification.

Neither Xerox nor ZS holds PCI DSS certification.

Neither Xerox nor ZS holds HIPAA certification.

Neither Xerox nor ZS holds GDPR certification.

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

Published

Date

2025-12-02

Updated

Date

2025-12-02

Risk Information

cvss3

Base: 4.9

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

References

Description

FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. FeehiCMS version 2.1.1 allows authenticated remote attackers to upload files that the server later executes (or stores in an executable location) without sufficient validation, sanitization, or execution restrictions. An authenticated remote attacker can upload a crafted PHP file and cause the application or web server to execute it, resulting in remote code execution (RCE).

Published

Date

2025-12-02

Updated

Date

2025-12-02

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

References

Description

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

Published

Date

2025-12-02

Updated

Date

2025-12-02

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

References

Description

NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database.

Published

Date

2025-12-02

Updated

Date

2025-12-02

Risk Information

cvss3

Base: 7.3

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

cvss4

Base: 8.4

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-336-01

Description

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries.

Published

Date

2025-12-02

Updated

Date

2025-12-02

Risk Information

cvss3

Base: 8.0

Severity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

cvss4

Base: 7.1

Severity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-336-01

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Xerox

VS

ZS

Xerox

ZS

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Xerox (X = Date, Y = Severity)

Incident History — ZS (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-65955

Risk Information

CVE-2025-65657

Risk Information

CVE-2025-65380

Risk Information

CVE-2025-64778

Risk Information

CVE-2025-64642

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Xerox

VS

ZS

Xerox

ZS

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Business Consulting and Services Industry Average (This Year)

Incidents vs Business Consulting and Services Industry Average (This Year)

Incident History — Xerox (X = Date, Y = Severity)

Incident History — ZS (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Breach XER336072725

🔒 Incident : Breach XER224321124

No Incident

FAQ

Between Xerox company and ZS company, which one has the best AI Cybersecurity Score ?

Between Xerox company and ZS company, which one has experienced more cyber incidents in the past ?

Between Xerox company and ZS company, which one has experienced more cyber incidents this year ?

Between Xerox company and ZS company, which one has experienced at least one ransomware attack ?

Between Xerox company and ZS company, which one has experienced at least one data breach ?

Between Xerox company and ZS company, which one has experienced at least one targeted cyberattack ?

Between Xerox company and ZS company, which one has experienced at least one vulnerability ?

Between Xerox company and ZS company, which one holds the most compliance certifications ?

Between Xerox company and ZS company, which one holds the fewest compliance certifications ?

Between Xerox company and ZS company, which one has the most subsidiaries ?

Between Xerox company and ZS company, which one has the largest number of employees ?

Between Xerox and ZS, which company holds both SOC 2 Type 1 certifications ?

Between Xerox and ZS, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Xerox or ZS ?

Which company is PCI DSS compliant — Xerox or ZS ?

Between Xerox and ZS, which company complies with HIPAA regulations for healthcare data ?

Between Xerox and ZS, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-65955

Risk Information

CVE-2025-65657

Risk Information

CVE-2025-65380

Risk Information

CVE-2025-64778

Risk Information

CVE-2025-64642

Risk Information